CVE-2022-23131 | Cybersecurity Alerts | Nexus IT Services, LLC

← Back to Cybersecurity Alerts

CVE-2022-23131

Zabbix | FrontendAdded 2022-02-22Remediation Deadline 2022-03-08

Zabbix Frontend Authentication Bypass Vulnerability

Unsafe client-side session storage leading to authentication bypass/instance takeover via Zabbix Frontend with configured SAML.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-290

References

https://nvd.nist.gov/vuln/detail/CVE-2022-23131